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together wiA the decrypted sec- 
^ section can then be ».cw«l 
as a full quality itnagcTTf stop 
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sentially the same as the stor- 
Se^Le nxjuiied tor stonng 

aee By ustag the medwd and 
^WoTm described herein «»r- 
aee and bandwidth requuenwnts 
for partially encrypted ima^ 
jeduccd. Fuithennore. object 
based composition and proeeK- 
ing of encrypted objects are fa- 

dUBied. and ROls can be «- 
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A METHOD KSD A DEVICE TOR ENCRYPTIOH OF MSSES 

TECHHICAL ^ 3^ a device for 

The present inventxon rexaces 

encrypting images. 

T»nnirniODND OF THE INVENTION AND PRIOR ART 

BACKGROUND OF TOE technical field which becomes 

E^cryptxon of ^,,,^^3 3ecret information or 

iitiDortant when transmxtting and storing 

delation ».ic. only s^X ^ available .o a ^^^^^^y;^ '^ 

2. infor-^tlon. Thus, several n^thcds tor 

aata are in frequent use. Such methods can also 

to digital i»age data. Examples of «>crypt.on methods are DES. 

triple DBS and the public-tey RS*. method. 

be stored on servers and distributed over a 
Digital images can be stored o ^ 

teleco™n.ioation net«r. «^gxt^^ -^^^ ^ 

b, distribute! using a P^^""^^^""^^^,, that suits 

service P-^^^^f^rtS =o e^^H^^^^ - -^->- " 
their business '"^^^^^ and full access to 

offer partial access to one set ol 

Thiiis some of tne xmage 

rr.r Lrarto ;rent an users from having full access 

to all image data. 

he offered for sale on the Internet. 
«ews P^°-^^P-^^ l^^^ ^Xow customers to download a 
The service provider wan „,,iitv for evaluation, 

version of the image with reduced ^1^'^; and 
journals, that want to publish ^ ''^^J^'^^^^, 
are then allowed to download a full quality im g 

„.„^ider wants to minimize storage space 
However, such a service provider w^ alternatively 
and download bit rates. ^ -age ^^'^^^^^'^^^.^^ are given 

to distribute - .an view the images at a 

away or sold for a low p viewing them at full 

.educed .^ality, but they »«t ^^J^ Z,s\o use the storage 

Tn the case the image provider ^ 
ra^on tL'^ROM as efficiently as possible. 
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It is also essential that customers always can access images 
X i : frien,Uy, standaxaisea so.twax.. Xma.e p.=v^e« are 
"iJtant to design and support special image viewers and 
customers don't want a proliferation of viewing tools. 

presently, image providers have to =tore two versions of the 
i^ges stored. The full quality " . " '^^ 

encrypted image file. This means that the image " „eg 

com^ssed «>d stored in a compressed file format such as JPEG 
IHlP The cos^-ressed fUe is tb«. «icrypted using a suitahle 
ZZ^iTn toorand an encrypted image file i= -ored^ The user 
mus^irst decrypt this file and then access --""^ 
compressed image file using an image viewing tool Reduced 
^ity images are produced by processing the full quality ^ 
qoaixty jjuaa stored as separate 

images in an image editing program. They are stor 

coit?>ressed image files. 

•vv, ^his solution are that at least two different 

versions J^^^ trLmitted over the networK in case of 
«rsions n»st „3,ts to see the free 

remote access in the case a resolution 
low resolution image before paying for the full 



version. 



It:, in a significant disadvantage if the reduced 
This results xn a sign .^^tion of the image 

version image contains a ^^^^ ^^^^^^ ^^^^ ,,_..s would 
information- Images ^^^J^^ ^ good quality 

- particular - P^^^^^^^^^ a detailed understanding of 

since journal editors wan hiahest quality for 

the image content and accept- -V - -^^^ - 

printi^. The 'f^f ^^^,,tyV,e. 
storage space of the run h 

P^thermore. the emerging still ' 
whic« is described in Charilaos Chr-^-^; 

verification Model ^^^Zs^^ '^^o.^^ still i-9e coding 
tunctionalities in , „«hods for creating a 

rre oHUret:::. rma:rformats. .ach application domain 
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c«i select a suitable progression mode. Individual objects 

images can be acc 1 separately in the 

Wtstream Ld progressive trans.»ission can be applied also to 
^Hcrs in J. 'ooo tbere is also support for independently 
decodable coding \anits. 

SUMMARY ^. _ 

It is ^n object of the present invention to overcome the 

p.ohle.s as outlined above and in particular to 

Lount of memory required for storing an omage. whxch ^--^-f^ 

Shall be possible to view, and also to reduce transmassxon txme 

in a transmission scheme transmitting partially encrypted. 

Images. 

This Object and others are obtained by a technique ^^J^^ 
encryption and progressive transmission o£ Images where a £«=t 
":^n of the image file can be de=o,ressed at re*.ced^.ty 
Tthout decryption, i.e. the first low guality ^ge not 
encrypted, and where a second section of the ^ge fxle 
encrypted . 

users rrrrserir::::tr:i:^ ^e 

decrypt this second section. The f xr ^.^^ 
decrypted second section can then ^-J^^^ ^^^^ ^ 

i^,e. The storage space -^-^^ ^-^^^"^/^ 3„„,e space 
section together is — ^^i,y image. The 
•^^r\ for storing the unencrypted tuxx qu» j 

Teir ;o?.r:encr:pted second section. 

, h. oartitioned into multiple sections where 
The image can also be individual encryption 

each section s.y be e-^"/^;-" nnencrypted. 
^thod and ■'-Vword. S«ne sect ^^^^^^ ^^^^^^^^ 

Sn important element o£ the metno 

herein is that the co^ressed .mages o^ istjf 

independently decodable coding -^^' J^' " ,,^,„sed 

possible to perform encryption °P««"^= ^ 

domain without performing entropy decodxng. 
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reduced <r.alUy i»age can be produced according « several 
different main schemes, such as: 
1} Reduced resolution 

2, Reduced accuracy o£ the transform coeffio.ents^ 
3) Bcdusion of predefined regions of ^terest (ROD 

Tliese methods can be co»i.in«i so that a reduced quality i»»ge is 
These Bietnoo resolution and the accuracy 

e.g. produced by reducing both the resoiuij. 

of the transform coefficients. 

Bv using the method and device for storing and transmitting 
Lre^ta as described herein, several advantages are obtained. 
C there is no need to store two different versions of 

if different users are to have access to different c^lity 
TtL one and same image, ^so. transmission times become much 
Of tne one oixvi ^Tj^fit low resolution r 

rgi iLrcaT::^:!:: — 

image data- 

^ith reference to the accompanying drawings, which. 



- Fig- 

- Figs 



-p -H^ file structure of an image. 
1 is a general view of ^^^^ ,,,„rding to 

2a and 2b shows encryption of images c 

^iT" : firwThLt illustratmg some steps carried c„t 
"Tsrdi::rrilustrating a client server process. 
- Fig'. 5 is a °' " encryption header 

DETMI^D DESCRIWION structure of an original, 

in Fig. 1, a general view of the file ^.^^ 

.igh resolution, j^^^ "J^^rentTndipendently decodable coding 
consists of a number of ■different '■ J ^^^^ in Fig. 

3ections XOl. 103 --^^\to« ttsotution version of a high 
, ..e f ^^toled :it^„. encryption and will therefore 

resolution image, is coaev* 
be possible to decode by any receiver. 

SOBSTTTUTE SHEET (RULE 25) 
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. „ j-i-a which combined with the 

The section 103, which comprises data, whicn co 
The ' ^ medium resolution version of 

data of section 101, resmt x ^ « first encryption 

the ^igh resolution image, is encrypted using a first encryp 
method and only receivers having access to the correct . 
T^..T.sy Ll be ahle to decode the data stored in the 

section 103 . 

• A^f-A wKich combined with the 

r:rr=r r:;:r.:::.r; t.^ ..... v.^.. 

hi,h resolution i»,e. is encrvpte* usin, a secon. 
encxvptio. method, and only receivers having access to the 
^:^tion Rey will be able to decode the data stored .n the 
section 105. 

^s. decoding o. the section - "^^^ ^ ^oL., o. the 

"Ton^^ri To^I^e -trr i»a,e data «ro. the section 

rr-ira .di. resoi^ion Lr 

rrS: i:ronnrJ°^or^- a .-ai reso^tion i..e 
115. 

^ther^re, i^lementation in 

- - <n?r rstsr nth coi::. o. the a..o 

r.M:rtra.^c°a; trmserted in the hitstrea. so that a «.d. 
range o£ progressive »od.= can be supported. 

9 o a coding unit is a part of 

- T^t rc:::s"rtci:;= bitpla^e a given 
the bitstream ^"-^ ""^"^ ,e described as any 
subband. in general, a coding information. The general 
independently decodable '"^^^ f^^^fj,^,,,, „ include so 
^cbanism for spec.fyxng "'^^^/^^^.^ ,it is 

called tags that specifies the next co g . ^ 

sufficient to -""^ ^--^^ ^-^X,, header that 

::::is rrerrtC::: =::r th. .avin, the bit. that 

Ire needed for inserting e:cplicit tags. 

SUBSnrUTE SHEET (RULE 26) 
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in Figs. 2a ana 2b blooX diagra.,^ describing bo. encryption can 
be iirplementea in tbe JPEG 2000 encoder and decoder 
respectively, are sboMi. 

Thus in Fig 2a a block diagram where encryption is performed 
^Jr entroL coding in th. encoder is shown. Coding xmxts enter 
Teltropy aiding bloc. 201. In th. blocK 201 coding the c^g 
^its arf entropy coded using some suitable 

output from th. block 201 is t.d to a ..lector whxch selects a 
Titabl. .ncryption m.thod for .ach «tropy coded cod^g un.t. 
some coding units can be ..lect.d to not be .ncrypted at all. 

in response to the selection made in the -^-"^ "^ '"^^^ 
entropy coded coding units are encrypted ^ a block 205. The 
^ory^ed coding units together with the not 
^« then form a combined output data stream, whrch can be 
Stored or transmitted. 

in Fi4 2b a decoder for decoding the bit stream generated by 
in ^^3. 2b a ^^^^^ encrypted and not 

""^tTcring -its enter the decoder via a selector 2S1, 
°:!27sttec«7suitable decryption method for each entropy 
which selects a „ceived coding unit is not 

coded coding unit, or it tne re 

encrypted it is directly transmitted to a block 25S. 

in response to the selection made in --^--^rusing a 
entropy coded coding units are ^J^;^"^^ ^,,3 are 

..itable :^i:rTn't^ btocr2SS the coding units 

then ted to the block 255^ I . decryption 

from ted directly from tb. s.l.ctor combined 

block 253 are »tropy ^'-'^^^^^''^^^rt'^Z^ which is fed 
output data stream corresponding to the data 
„ the entropy coding block 201 in Fig. 2a. 

i„ the transmission scheme as shown 
Each coding " ^ ^ independently encrypted block. 

Pigs. 2a and 2b is "-"^f ^^^^^ J separately with any user 
Each coding unit can in the same image 

.npplied : :^err ^^^^^^^ -ethods. .he 

can be encrypted wito 
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^i^^A^ r^^ry in such an embodiment have 
Bi„exent «=xvpt«^ Tuf^ ferent K ^o.ds. Encryption Met^ 
Identical algorithms but different Y» 

description ,E»» as shown ^ '^^^.'^ ^^^^.^^^^J^ needed 
such as session keywords or algorithm identifiers tha 

\<,v the Encryption Method, onit Encryption State (OES) is 
Ts::::; Ur*" codi., umt defines how it is encrypted. 

in Fig 3 a flow Chart illustrating different steps carried out 
! .tCntin, an image are shown. First, in a step 301. an 
rgeToTr.^^Xy encrypted is received, .he image rece^^d 

rrtep 301 !. coded using r^^^ ------- 7'- 

independently decodsbl. coding units, e.g. JPEG 



303. 



• . .tep 305 sorue of the coding units of the iioage coded 
"3^3 are erc;ypted using so»e suitable encryption .ethod. 
in step 303 are encryp encrypted 
such as OES The codiBg -t= t^t - , 

can be set in ""-^"^""'^ " to ROIs, higher order 

chose to have coding units "'"^'^ J encrypted coding units 

and the coding units wnicn «* 
single bit stream. 

„ Fig. . a flow Chart --^-^ 

„^ transmitting an ^^^^ TisThoL. Thus, a client 

■ described in conjunction -'"^^3. i,3„e 

is ::rr -fra particular image, step 

a request towards the server 



405 



„, .„lies by transmitting the coding units of the 
The server 403 replies t^tr ^ encrypted 

i»,e which are not "^'W"^; ^ J.^^.^, now will have 
coding units can be decoded by the =11 

.ecess to a low --^-^""-"/.renrl/Sh to have access to 

- ^:"rr"r::oirtion or the'full image. Xf so the 

the image in a higher resoiu 
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Client transmits a request to the server requesting such 
information, step 409. 

The server replies by sending a request to the client requesting 
the client to agree to the conditions for transmitting the 
higher resolution version of the image, step 411. If the clxent 
agrees via a message 413, e.g. comprising a card number or 
account number from which to bill the cost for the image the 
server sends the encrypted coding units together with a key word 
by means of which the encrypted coding units can be decrypted, 
step 415. A secure method for key distribution should be used. 
Examples of such secure methods are described in W. Stallings 
-Data and computer Communications-, p 635 -637. Prentice-Hall 
1997 fifth edition ISBN 0-13-571274-2. 

If the client already has access to the unencrypted and 
encrypted coding units, for example if he has purchased a CD-ROM 
witl^ges coded as described herein. The scheme as described 
in conjunction can be modified so that no image data xs 

:.an j«e.. xns.e,. ..e ^^^^^ ^i^z'i7 ^:::sT7j:i7 

the server in order to have access to the key worai , 
required to decrypt the encrypted codin, unrts ot the CD ROM. 

„ the case when the .ethod -- --- - --^^^^ rt::^^? i. 

„sed When encoding Ts 1 standardise 

i3 advantageous^, the ^^^00 ^^^^^ 

encryption Bncryptlon Tag that is merged with 

r^oVgfr Litead he used to specify how coding 
units are decrypted. 

„ such an emhodi^nt the JPEG 2000 i^ge """f 
^cryption «ag . is then set - -7-,, 

-IT^.: rr.:::err err;ption i„.or.tion c. 
optionally be merged into JPEG 2000 Tags. 

S an encryption header is e.o«> . The -ration Header 



in Fig 



can 



±a 5 an encirypuj-w" w^n e 

in such an en.>odi»ent contain the following sy,.^ols. 
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1) Encryption Mode (EM) . A set of standard encryption modes are 
defined e.g. 

a) .one encryption, method is used for all coding units 

b) Bitplanes of less significance than bitplane X are encrypted 

c) subbaads of higher resolution than Y are encrypted 

d) ROIs specified in are encrypted, etc. 

NO encryption information need to included in the Tags if an EM 
is defined. 

2) Encryption Mode Parameters (BMP). Parameters (X. Y. ...) that 
are used to define the Encryption Mode are set here. 

3) Number of encryption methods used. Several encryption methods 
can be used within the same i^age if e.g. different user groups 
should be allowed to see different image content. 

«=»->,r>rj np<5cribtor (EMD) for each encryption 

4) one Encryption Method Descrxptor 

method The EMD defines any data that is needed by the 

is defined. A typical use oi luw supplies a 

ttot is encrypted by a public Key algorithm. The user PP 
■ v.„ for decrypting the enclosed encrypted key. The 
private { decryption algorithm to decrypt 

decrypted key " "'^"^ EMDs allocates an number to 

i^ge coding units^ The ^3 ,^is. 

each encryption method. This numu 

- fr^T #»ach coding unit specify if it is 
5) The bitstream must for «*<=^^°^^ ^ ^^^^.^^ 

encrypted and if so by what method. This is do y 

. s^ol per coding unit. These 

nnit ^^^^^'/.^coL^ci in the encryption header or 

symbols could either be co .^^eam as encryption 

alternatively be distributed in the bit ,e 
tags. If the UES information is .ept -^^^ ^^^^^ ^^^3,3,3 
.efine a header element - ^<^^--/;; ^ 3,,, o,,er as the. 
a series of UES symbols that are listed m the 
coding units appears in the bit stream. 

XP EF is set and the Encryption State is not given in the 

suBsnruTE sheet crule ZB) 
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unit. 

tr.nB.cr. coe«icien.= belongin, to a H^can be « 
■^^ -hove Thev can be completely or partially encrypteu 
described above^^ey belonging to the EOI for 

by selecting appropriate coaiixa 
encryption. 

. ^ho shaoe of the ROI might reveal the 

^« r a^rarr:n:::^.e. . . -.c^t 

to show a reduced quality lioage since it is difficult 
interpret the coded transform coefficients. 

Shape •c-s'^P^ :!l;rThe c-shape is designed to 

LTr^i rri^i::: -1- — °' - =- 

shape is a bounding box. 

WOT in the JPEG 2000 bit 
^ " Xrircltdrt-renrryption as described in 

— rjirc:.os >ed^. - - — ^^^^^^ 



header. 



. „asK is created ^ r-ts^ldirr^crypted 

coefficients ^^^-^^-^J'^Z hereil. This -ill result in that 
using the method as descriD shielded 
..1 coefficients -longing tc »y of the^ ^^^^ 
by the c-shape are encrypted. Tne 
protected by encryption. 

.he Shape of the that 
encryption header. The corresponding c-shape. 

r:e:::rc: = r ^thcrypted ha^round. 
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.^pe can displayed as a .lax* region. The 

L Lcoded if the keyword is known. This is done by ^-^V^""^ 

ooe££ioients belonging « the =-shape. The shape of each ROI 
^loIHng to the c-shape is also decrypted. The bitstrea. can 
now h! r.arr«.ged so that the c-shape is dropped and the 
original ROI data structures are restored. Note that this iS 
done in the compressed domain. 

The ^s^ that is used for encoding a HOI is not 

in ^EO 2000. A mask that is sufficiently large so 

is needed lossless will often cover the whole lower 

^sfthat is not allowed to expand will lead to a lossy encoding 

Tth^ ROI. The mask, belonging to different ROIs or to a ROI 

1 ehe background can be designed to overlap. Th.s means that 

ao» coefficients are encoded in more than one 

, •n T.rt to a reduced overall compression but the ROIs 
overlap will lead to a reauoe .—essed and decoded 

are more independent so that any ROI can be accessed 

with a good visual result. 

.».~« Cnf ROIS described herein is not 
The partial encryption '^<^J^"=J^^^^ is selected 

dependent of the °^;"^^:,'L%e.„nstructed from the 

— ra:rrh:r^ —^.^^ rerihi-c-^.:^ 

r.:r:r;n.~:oro ^rnncation .del version 3.0. 

^ using the method and ^^^^ :^-^::rX"lT 
^dwidth ;:rb: fd co:osftion and processing of 

reduced. Furthermore, f^^^ ^ ^,3 ,3n be encrypted, 

encrypted °««"^";^rca:te e;crypted and the original 
re;tTanr-:y;«d restored in the compressed domain. 

aether advantage is that ^-^^^2^:^^'°^'' ^^'^ 
performed at the sa.e ti.e - — .at the 

'"-^^'^IX"^ ItTs ^ss^e To encode all images without 
bltstream syntax) ^ performed just before 

rrit^ngThe^-e": a Parser .transcoder. . Ih this case, 

SUBSrmiTE SHEET (RULE 26) 
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4.*,« hi^•rate which will be the case 
« enc^cion incxe«es . ««e. ^^^^^^^ ^ ^^^^^^^ 

transmitting it. 
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CLAIMS 



1. K method Of peo^ially encrypting l«g. data =««ri.li.g tb. 

!'^'«» l-g. e.t. using "=odin, .lgorit>» ,an=ratl«, 

Jndepana«itly deoodabl. coding units, 

- «.crypting at l«uit one o£ the coding units, and 

. Sg c!di.g units which are not encrypted with coding unit. 

Which are encrypted into a combined bitstream. 

, K .ethod according to clai. 1, =har«=teri»ed in that the not 
en^^ted coding units correspond to a low resoXution version ot 
the image data. 

3 » «thcd according to any of clai« 1-2, ch«..cteri.ed 1^ 

lifferi* ceding units are encrypted using different ccdi^ 
xiethocls* 

4 A method according to any of clai^ 1 - '^'^r^^J^ 

an encryption flag, which indicates if a coding unit is 
encrypted, is inserted in the bit stream. 

^ -I - 1 - A when information 

J • — anv of ClaXSLS 1 - 4 , wn^** **** 

. method ^J^^^JZ interest is encrypted, 
rXT/el ^h^^he snaps Of th. region of interest is 
enclosed in a cloaking shape. 

. „^ial encryption of image data characterized 
6. A device for partial enutyf 

for rinre:riy'rr^^^^^ 
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